US Department of Defense held its first hacker contest ” white hat hackers” by invitation

[Abstract ] DoD hacker contest, held for the first time, offering a reward to invite folk masters to find loopholes in the Pentagon website, found more than a hundred at risk.
The Pentagon plans to continue in the future and expand the scope of such activities.

DoD Pentagon hacker contest, held for the first time, offering a reward to invite folk masters to find loopholes in the Pentagon website, found more than a hundred at risk.
The Pentagon plans to continue in the future and expand the scope of such activities.

government set a precedent

this practice is not new in the business world: “white hat hackers” are invited, before the real rush to launch malicious attacks by hackers to find and block network vulnerabilities.
And this is the US Department of Defense and the US federal government first such attempt.
Game called “Black to the Pentagon,” season from April 18 to May 12, attracted more than 1,400 participants, looking for safety hazards at the Pentagon five open site.

US Department of Defense announced on the 17th, after the end of the contest, participants reported a total of 1189 weak points, 138 of which were identified as “unique and effective.”

“We have not found loopholes, and now we can fix them,” Secretary of Defense Ashton Carter said, “than pay someone to do much, much better than the trouble we find out.”

Pentagon has also developed a series of follow-up plans, intends to expand such activities to the troops, military contractors will be encouraged to follow suit.
In addition, any person in the future if vulnerabilities were found in the military network, they can report without fear of being prosecuted.

Pentagon for this race spent $ 150,000, half of which is a bonus.
Runner has found multiple vulnerabilities, the highest prize of $ 15,000, the rest of the winners get a minimum of $ 100.
Carter believes that this money is very cost-effective.
“This is not a small sum. However, if in accordance with the usual practice, ask the contractor to find and assess security risks, at least spend more than $ 1 million,” he said.

day school students eligible for special praise

Carter praised the two contestants, a network security company is a security consultant, the other a high school graduate David De Woken.

18-year-old De Woken just graduated from high school a few days ago, I will go to school at Northwestern University.
He used the spare time to play, found six vulnerabilities.
Interest

De Woken grade 10 to hacking.
At that time, he is learning computer courses, together with the students on the school website found some vulnerabilities.

De Woken said that he found on the Pentagon Web site vulnerabilities, hackers have the opportunity to make some changes to the page display even steal account information.

Nevertheless, De Woken not get a bonus, because other contestants to report that vulnerability to him.
And he was very happy.

Article By :